I sent an email to Diablo Fans to put up a notice but in case they don't get the message for a day or so I am creating a new thread here to let people know as of this morning there may be some issues with photobucket.
I loaded up some photos a few hours ago and there is a nasty, nasty page redirection to a .com 'antispywareprolivescan' that even FireFox isn't able to stop the pop hell it is unleashing. It also attempts to get you download and install an executable. It is attempts to present itself as the user's anti virus acting like it's doing a scan and aggressively tries to get you to install their crap via multiple pop-up messages.
I am now debating with Photobucket support; of course they are telling me to get an anti-virus package and are assuming it must be my machine. I'm certain it's not my machine and I believe either Photobucket has been hacked or one of its advertisers is abusing their privileges. I have the latest virus definitions for my Symantec Endpoint Protection and performed a TrendMicro house call scan only a few days ago (I do this monthly as a matter of practice), my system is clean. I'm a Systems Security Officer (SSO) for a healthcare company my job is securing my employers network and ensuring it complies with the governments DISA and DoD system security standards under CMS Medicaid and Medicare. I have an arsenal of some pretty powerful and expensive toys for checking my computer further, it is clean.
If you have a PC and have the same issue just make sure you don't click on the pop-ups, best to just open task manager and kill your browser.
I'd put up some print screens but then I'd have to go back to Photobucket or create a new account on another site
Sweet, I just checked again (thanks for taking the bold plunge man) and now the site redirects (probably because I got a cookie left behind) but instead of the getting the site, I get 'Reported Attack Site!' message. Looks like Photobucket got on it fast.
Just checked again and the site does not redirect at all now.
Sounds like someone else doesn't use NoScript and is surprised by cross-viruses.
Chances are, this isn't Photobucket, but a virus/trojan that used Photobucket security holes to attack your computer.
Chances are it was Photobucket, getting hit with a non-persistent cross-site scripting virus running a server-side script. Photobuckets fast response is a pretty good indicator of that. I do have NoScript installed and it failed because Photobucket is in my allowed list. I only hit about a handful of different sites, if it were a persistent cross-site script my Symantec Endpoint Protection would have captured it, I have malware and adware protection turned on. In 20 years I have never had a virus on my home computer.
lucky you :\ i have got like 5+ and they are a pain the fucking ass to get off...
Yes they are, I helped start a .com in 90's and took it public, I was the system engineer then (almost got rich :confused: :mad: :D) and the CEO would not spring for an anti-virus package, couldn't get him to understand the risks. We got hit with the ILOVEYOU virus. Despite sending out 10 successive emails telling people to not open it if they got it (pissing some off for spamming them), blocking VBS extensions on the mail server (we didn't have web content filtering couldn't get the CEO to spring for that either) we still got hit. One of our developers who had administrator priviledges and access to production systems (she was the point person for change control) on her system apparently was feeling unloved and checked her web mail, and we got nailed.
I got loved a 160,000 times and spent three days cleaning up systems and checking 265 machines in all. It even hit our application server which uploaded our application to Akamai for global hosting (that's bad). Akaimai hosts content on multiple systems around the globe so international surfers don't experience prolonged delays when hitting web sites in other countries, despite DNS being globally hosted, there are still delays to foriegn sites and so services such as Akamai are used. They host MSN video's, Quicktime movies, CNN content etc. That uber-sucked, but we got the CEO to finally spring for anti-virus, the developer, well the shame was punishement enough and I got a free pizza from the developer and the company.
Yeah but what can I do? My other choice it to look whole lot of this:
That kind of sucks too, I don't really want to spend a lot of time picking at the finer settings just to see a page just the way I want, every site is different.
Sweet, I just checked again (thanks for taking the bold plunge man) and now the site redirects (probably because I got a cookie left behind) but instead of the getting the site, I get 'Reported Attack Site!' message. Looks like Photobucket got on it fast.
Just checked again and the site does not redirect at all now.
You da man!
No problem. I know I'm the man, man :cool:
Rollback Post to RevisionRollBack
Rise and rise again, until lambs become lions
To post a comment, please login or register a new account.
I sent an email to Diablo Fans to put up a notice but in case they don't get the message for a day or so I am creating a new thread here to let people know as of this morning there may be some issues with photobucket.
I loaded up some photos a few hours ago and there is a nasty, nasty page redirection to a .com 'antispywareprolivescan' that even FireFox isn't able to stop the pop hell it is unleashing. It also attempts to get you download and install an executable. It is attempts to present itself as the user's anti virus acting like it's doing a scan and aggressively tries to get you to install their crap via multiple pop-up messages.
I am now debating with Photobucket support; of course they are telling me to get an anti-virus package and are assuming it must be my machine. I'm certain it's not my machine and I believe either Photobucket has been hacked or one of its advertisers is abusing their privileges. I have the latest virus definitions for my Symantec Endpoint Protection and performed a TrendMicro house call scan only a few days ago (I do this monthly as a matter of practice), my system is clean. I'm a Systems Security Officer (SSO) for a healthcare company my job is securing my employers network and ensuring it complies with the governments DISA and DoD system security standards under CMS Medicaid and Medicare. I have an arsenal of some pretty powerful and expensive toys for checking my computer further, it is clean.
If you have a PC and have the same issue just make sure you don't click on the pop-ups, best to just open task manager and kill your browser.
I'd put up some print screens but then I'd have to go back to Photobucket or create a new account on another site
Rise and rise again, until lambs become lions
Chances are, this isn't Photobucket, but a virus/trojan that used Photobucket security holes to attack your computer.
Sweet, I just checked again (thanks for taking the bold plunge man) and now the site redirects (probably because I got a cookie left behind) but instead of the getting the site, I get 'Reported Attack Site!' message. Looks like Photobucket got on it fast.
Just checked again and the site does not redirect at all now.
You da man!
Chances are it was Photobucket, getting hit with a non-persistent cross-site scripting virus running a server-side script. Photobuckets fast response is a pretty good indicator of that. I do have NoScript installed and it failed because Photobucket is in my allowed list. I only hit about a handful of different sites, if it were a persistent cross-site script my Symantec Endpoint Protection would have captured it, I have malware and adware protection turned on. In 20 years I have never had a virus on my home computer.
Yes they are, I helped start a .com in 90's and took it public, I was the system engineer then (almost got rich :confused: :mad: :D) and the CEO would not spring for an anti-virus package, couldn't get him to understand the risks. We got hit with the ILOVEYOU virus. Despite sending out 10 successive emails telling people to not open it if they got it (pissing some off for spamming them), blocking VBS extensions on the mail server (we didn't have web content filtering couldn't get the CEO to spring for that either) we still got hit. One of our developers who had administrator priviledges and access to production systems (she was the point person for change control) on her system apparently was feeling unloved and checked her web mail, and we got nailed.
I got loved a 160,000 times and spent three days cleaning up systems and checking 265 machines in all. It even hit our application server which uploaded our application to Akamai for global hosting (that's bad). Akaimai hosts content on multiple systems around the globe so international surfers don't experience prolonged delays when hitting web sites in other countries, despite DNS being globally hosted, there are still delays to foriegn sites and so services such as Akamai are used. They host MSN video's, Quicktime movies, CNN content etc. That uber-sucked, but we got the CEO to finally spring for anti-virus, the developer, well the shame was punishement enough and I got a free pizza from the developer and the company.
Yeah but what can I do? My other choice it to look whole lot of this:
That kind of sucks too, I don't really want to spend a lot of time picking at the finer settings just to see a page just the way I want, every site is different.
No problem. I know I'm the man, man :cool:
Rise and rise again, until lambs become lions